Alex: I take your advice. Every IP address will be public. Thanks. Kirti -----Original Message----- From: alex [mailto:alex@wanex.ge] Sent: Wednesday, September 10, 2003 9:55 AM To: Discussion relating to the 3Com/US Robotics Total Control modem systems. Subject: Re: [USR-TC] 3Com TC IP Numbering?? Kirti: Dial-In users: Your customers (dial-in clients) won't be "happy" with their private address (Joel noticed that too). Some services will not be working correctly on users site: like some download p2p clients (maybe KaZaa, eDonkey, possibly ftp too, etc.). About ARC: once more I have to write this: your ARC will not connect to any site outside your network, but it will send icmp replies like "ip address in not used now" (destination-host-unreachable). I dont think that setting private address to ARC will make a problem. About NMC: it depends on from where you will be managing your chassis. If you manage your chassis from local network - you are free to set it private address (without further translating it tu public). If you have only 4 T1s, you need ONLY 96 (maybe half of C-class, 128) IP addresses for dial-in users (dinamically assigned). Kirti S. Bajwa wrote:
Alex:
Thanks for your reply. I think the following information further clarify my earlier question:
(a) My network is for Dial-In customers only. In that case, is there any problem if I use private addresses for ARC & NMC?
(b) I do have sufficient IP (255) addresses to use for Dial-In customers. But using private IP addresses make it easy to program 3Com Chassis. I can assign a private IP address to all modems whereas right now I have to assign IP addresses to only 4-T1 (96 modems). I want to design the setup whereas 3Com Chassis might be located behind a firewall. The firewall server can translate the private IP addresses to public IP addresses via masquerading. This way if tomorrow, I switch the carrier providing the T1 & block of public IP addresses, I have no changes to 3Com Chassis.
Do you get the picture? I will be more than happy to send a diagram (Powerpoint) if somebody wants to further criticize my design.
Thanks again.
-----Original Message----- From: alex [mailto:alex@wanex.ge] Sent: Tuesday, September 09, 2003 5:50 PM To: Discussion relating to the 3Com/US Robotics Total Control modemsystems. Subject: Re: [USR-TC] 3Com TC IP Numbering??
Hello Kirti.
1: You can assign private address for your arc, but for example it wont be able to send icmp-destination-host-unreachable if ip from dial-in pool is not used (this icmp packet with private source address wont reach its destination). You can always limit access to your arc with access-lists (better to do it on border routers in your network).
You can freely set private address to NMC. Only you use it.
P.S. Don't forget to limit telnet access to your arc by "add telnet client <ip/netmask>" and "enable telnet client_access".
2: Dial-in clients: if you have lack of public ip addresses you must assign them private addresses and then translate to public. In other cases I dont think that it's good idea to assign private addresses to dial-in clients. You can protect your public ip pool for dial-in users from outside internet with access-lists, both on arc and on border router, closing some ports (netbios over tcp, proxy, telnet, ports used by some worms/viruses, etc).
----- Original Message ----- From: "Kirti S. Bajwa" <kbajwa@tib.com> To: <usr-tc@mailman.xmission.com> Sent: Wednesday, September 10, 2003 2:12 AM Subject: [USR-TC] 3Com TC IP Numbering??
Hello List:
I am trying to setup a 3Com TC Chassis. Since this is my first try & I am the type of person who read, plan & design every thing to death, a million thoughts are going through my mind. So before I go koo-koo, I thought I
post
the following questions to the list:
1. Public vs Private IP Address (3Com Chassis) -------------------------------------------
Should I assign public or private IP address to the 3Com. I am trying to figure out pro and cons. If I assign public IP address (in my case 12.21.237.X), then it is open to the whole world. Someone may try to HACK
it
(tell me if it happens). But then if there is a question to 3Com list,
then
people trying to help can PING the Chassis (it has happened before)and
post
their responses.
1. Public vs Private IP Address (Dial-In) -------------------------------------------
Is it possible to assign private IP addresses (192.168.1.X) to Dial-In
users
in a 3Com Chassis or they have to be private IP addresses?
Thanks.
Kirt Bajwa TIB Computer Systems Mountain City, TN 37683 Tel: (423) 727-3001 eMail: kbajwa@tib.com
_______________________________________________ USR-TC mailing list USR-TC@mailman.xmission.com http://mailman.xmission.com/cgi-bin/mailman/listinfo/usr-tc
_______________________________________________ USR-TC mailing list USR-TC@mailman.xmission.com http://mailman.xmission.com/cgi-bin/mailman/listinfo/usr-tc
_______________________________________________ USR-TC mailing list USR-TC@mailman.xmission.com http://mailman.xmission.com/cgi-bin/mailman/listinfo/usr-tc
-- alex, ICQ# 219089461, Current status